$ rpki-client -vvf rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.mft File: gVvw7iCl3LowV8PTW1jsFHcuj-8.mft (raw, json) Hash identifier: f0opCVygkpzEYTA5xZ0XNDDnoAjGOt3QSuZtDKw6Z1Y= Subject key identifier: 5C:55:B6:AF:DB:34:CD:39:2C:CD:17:CE:7C:7B:41:4E:62:75:59:76 Authority key identifier: 81:5B:F0:EE:20:A5:DC:BA:30:57:C3:D3:5B:58:EC:14:77:2E:8F:EF Certificate issuer: /CN=A91149E6/serialNumber=815BF0EE20A5DCBA3057C3D35B58EC14772E8FEF Certificate serial: 0317 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gVvw7iCl3LowV8PTW1jsFHcuj-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.mft Manifest number: 0313 Signing time: Sun 19 Oct 2025 03:13:30 +0000 Manifest this update: Sun 19 Oct 2025 03:13:29 +0000 Manifest next update: Sun 26 Oct 2025 03:13:29 +0000 Files and hashes: 1: gVvw7iCl3LowV8PTW1jsFHcuj-8.crl (hash: iRyiyQVxgknLypIqtyRWYp8P4zZwA7AW9Rf8KxtVVcA=) 2: 54FEFAA2ED4C11EC821F3D84C4F9AE02.roa (hash: X6/WL2Fb6NLT/TbbuE2SKgksYwkJEDYC9NLRzws0bWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.crl rsync://rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gVvw7iCl3LowV8PTW1jsFHcuj-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 791 (0x317) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91149E6, serialNumber=815BF0EE20A5DCBA3057C3D35B58EC14772E8FEF Validity Not Before: Oct 19 03:13:29 2025 GMT Not After : Oct 26 03:13:29 2025 GMT Subject: CN=68f4575a-d98b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:17:b5:f0:ba:79:dd:29:5e:7b:e0:da:30:30: 1f:69:b8:52:52:46:6a:38:44:23:94:46:0f:68:10: 28:d5:7c:b0:96:6b:c0:b3:55:fe:1a:83:76:79:f9: f7:39:89:3f:08:93:46:66:65:8a:95:a9:b4:47:a2: d1:b8:45:c6:fc:2c:17:79:f4:d2:53:76:d5:de:6a: d6:23:a4:9f:40:93:ab:5d:35:a0:70:bf:e0:6f:70: ab:7c:13:dd:8b:54:ca:7c:54:ad:c3:97:53:8d:36: 80:39:f6:bd:5a:f5:cb:8a:1a:2a:f7:6e:99:5e:fa: bb:1b:82:96:98:08:f3:9d:bd:14:33:eb:49:d4:3a: 15:37:30:95:e4:d0:b9:41:92:25:42:16:1c:65:6e: ec:01:d8:0a:8a:10:18:f2:1c:f9:2b:49:4b:45:46: 0d:69:b0:8d:04:9b:23:36:73:78:b2:d2:45:b7:17: 05:09:8b:c3:eb:c6:80:b9:ce:5c:e4:9f:6c:58:0b: 92:23:ed:b0:29:89:c2:41:01:cb:0c:01:e1:58:9b: cf:86:25:71:c5:47:0f:2b:d9:02:d0:ac:5d:45:e2: de:e3:16:b9:5b:86:2c:eb:7f:25:5d:95:da:91:5d: 6e:5b:b5:62:dd:54:ef:33:1d:c1:f9:c4:d3:c7:80: d9:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:55:B6:AF:DB:34:CD:39:2C:CD:17:CE:7C:7B:41:4E:62:75:59:76 X509v3 Authority Key Identifier: keyid:81:5B:F0:EE:20:A5:DC:BA:30:57:C3:D3:5B:58:EC:14:77:2E:8F:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gVvw7iCl3LowV8PTW1jsFHcuj-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:0e:bf:63:51:98:d6:ec:59:09:f9:61:3a:cc:d8:54:b9:68: 99:c5:c7:02:f4:5c:81:e4:f1:b6:a7:35:5d:82:12:3c:01:1e: 36:3b:ed:19:f5:18:ad:92:4e:2d:42:76:c2:a6:b3:08:20:82: 97:90:98:82:1d:62:dc:c9:64:aa:4d:53:07:c3:6e:31:c4:93: 3a:24:4f:a2:b0:8a:77:f8:5f:5d:f3:d9:b1:0e:30:48:d9:ae: 87:ed:db:ff:ad:c1:dc:c6:a8:d7:be:79:39:e6:c1:77:64:cc: da:d8:a0:9d:bc:2f:33:df:83:12:9e:ca:9c:77:3f:a3:fb:29: fe:6e:5f:78:2b:81:18:b0:1a:8a:7c:a8:bd:9c:da:68:cb:86: a3:93:32:66:33:4c:bb:1b:1e:ed:ae:43:b6:f6:45:c1:eb:51: 3d:b2:f5:63:85:62:0c:33:d7:6b:1c:2b:3b:74:cf:1b:b3:5b: d3:ad:94:ad:e2:99:0b:3b:17:1e:1e:9b:8f:f6:84:64:fb:f5: a5:a4:8b:8f:60:31:ac:ae:5b:3a:18:5b:10:06:4c:fa:0d:db: e0:33:f2:2a:b7:35:40:5b:b0:54:b6:a5:3d:b3:99:1b:51:20: d7:72:75:c3:d3:68:6c:db:09:47:72:76:5b:ef:4b:ac:23:cb: a3:65:da:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQ5RTYxMTAvBgNVBAUTKDgxNUJGMEVFMjBBNURDQkEzMDU3QzNEMzVCNThFQzE0 NzcyRThGRUYwHhcNMjUxMDE5MDMxMzI5WhcNMjUxMDI2MDMxMzI5WjAYMRYwFAYD VQQDEw02OGY0NTc1YS1kOThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRe18Lp53Slee+DaMDAfabhSUkZqOEQjlEYPaBAo1XywlmvAs1X+GoN2efn3 OYk/CJNGZmWKlam0R6LRuEXG/CwXefTSU3bV3mrWI6SfQJOrXTWgcL/gb3CrfBPd i1TKfFStw5dTjTaAOfa9WvXLihoq926ZXvq7G4KWmAjznb0UM+tJ1DoVNzCV5NC5 QZIlQhYcZW7sAdgKihAY8hz5K0lLRUYNabCNBJsjNnN4stJFtxcFCYvD68aAuc5c 5J9sWAuSI+2wKYnCQQHLDAHhWJvPhiVxxUcPK9kC0KxdReLe4xa5W4Ys638lXZXa kV1uW7Vi3VTvMx3B+cTTx4DZmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFxVtq/b NM05LM0Xznx7QU5idVl2MB8GA1UdIwQYMBaAFIFb8O4gpdy6MFfD01tY7BR3Lo/v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDlFNi8zMjQ2RkU2RUVE NDgxMUVDQjVERTEwODJDNEY5QUUwMi9nVnZ3N2lDbDNMb3dWOFBUVzFqc0ZIY3Vq LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dWdnc3aUNsM0xvd1Y4UFRXMWpzRkhjdWotOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDlFNi8zMjQ2RkU2RUVENDgxMUVDQjVERTEwODJDNEY5QUUwMi9nVnZ3N2lDbDNM b3dWOFBUVzFqc0ZIY3VqLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzDr9jUZjW7FkJ+WE6zNhUuWiZxccC9FyB5PG2pzVdghI8AR42O+0Z 9Ritkk4tQnbCprMIIIKXkJiCHWLcyWSqTVMHw24xxJM6JE+isIp3+F9d89mxDjBI 2a6H7dv/rcHcxqjXvnk55sF3ZMza2KCdvC8z34MSnsqcdz+j+yn+bl94K4EYsBqK fKi9nNpoy4ajkzJmM0y7Gx7trkO29kXB61E9svVjhWIMM9drHCs7dM8bs1vTrZSt 4pkLOxceHpuP9oRk+/WlpIuPYDGsrls6GFsQBkz6DdvgM/IqtzVAW7BUtqU9s5kb USDXcnXD02hs2wlHcnZb70usI8ujZdrX -----END CERTIFICATE-----Generated at Mon Oct 20 11:28:35 2025 by rpki-client